138.186.84.147:3000/php/vrcotacao/login.php
138.186.84.147200 OK 4.4 kB URL User Request GET HTTP/1.1 138.186.84.147:3000/php/vrcotacao/login.php
IP 138.186.84.147:3000
File type HTML document, Unicode text, UTF-8 text
Hash 149fdf9b337e8da0dd10e9359907bbbd
12c70fcf5632e13dbf2e6268d599b72cdb8706ee
36cb1a8be701ce6055ace1f2c30e46b4d56e4a62196c9ca664f9af525f56e731
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /php/vrcotacao/login.php HTTP/1.1
Host: 138.186.84.147:3000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: GlassFish Server Open Source Edition 5.1.0
X-Powered-By: Servlet/3.1 JSP/2.3 (GlassFish Server Open Source Edition 5.1.0 Java/AdoptOpenJDK/1.8)
Content-Type: text/html
Content-Length: 4411
138.186.84.147:3000/php/vrcotacao/css/vr.css
138.186.84.147200 OK 2.5 kB URL GET HTTP/1.1 138.186.84.147:3000/php/vrcotacao/css/vr.css
IP 138.186.84.147:3000
Requested by http://138.186.84.147:3000/php/vrcotacao/login.php
Hash 874b60c2dfc771a5ea3cc27906728688
9641fae2ebdd21aa02a5557a338714ad39566b88
4cc5dd80b5eae92b960838596f572fb0f40cf3563639363de30a09266af017f5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /php/vrcotacao/css/vr.css HTTP/1.1
Host: 138.186.84.147:3000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://138.186.84.147:3000/php/vrcotacao/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: GlassFish Server Open Source Edition 5.1.0
X-Powered-By: Servlet/3.1 JSP/2.3 (GlassFish Server Open Source Edition 5.1.0 Java/AdoptOpenJDK/1.8)
Accept-Ranges: bytes
ETag: W/"2484-1623696145000"
Last-Modified: Mon, 14 Jun 2021 18:42:25 GMT
Content-Type: text/css
Content-Length: 2484
138.186.84.147:3000/php/vrcotacao/js/ajax.js
138.186.84.147200 OK 2.6 kB URL GET HTTP/1.1 138.186.84.147:3000/php/vrcotacao/js/ajax.js
IP 138.186.84.147:3000
Requested by http://138.186.84.147:3000/php/vrcotacao/login.php
Hash 0c757ea76d5442ef4ef1a5ccff744a47
d5d39ab2b846dfae3c04d5d07081688373fe3529
a8659c02d0193fcc7a133d9cdecc17b0daec2ca3962135c74edf2fb254cf8190
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /php/vrcotacao/js/ajax.js HTTP/1.1
Host: 138.186.84.147:3000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://138.186.84.147:3000/php/vrcotacao/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: GlassFish Server Open Source Edition 5.1.0
X-Powered-By: Servlet/3.1 JSP/2.3 (GlassFish Server Open Source Edition 5.1.0 Java/AdoptOpenJDK/1.8)
Accept-Ranges: bytes
ETag: W/"2577-1618236450000"
Last-Modified: Mon, 12 Apr 2021 14:07:30 GMT
Content-Type: text/javascript
Content-Length: 2577
138.186.84.147:3000/php/vrcotacao/js/vr.js
138.186.84.147200 OK 11 kB URL GET HTTP/1.1 138.186.84.147:3000/php/vrcotacao/js/vr.js
IP 138.186.84.147:3000
Requested by http://138.186.84.147:3000/php/vrcotacao/login.php
Hash b8f0bb02d9fd6dff7bb7015c0f8b2b11
00b7b511d5d43e82e8d0ea7576a81ea65ab9ae5e
7014d6e966b43f8bbc76de01d885101fc1324b6dec4379ebcdc5e20ca9f4c6b0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /php/vrcotacao/js/vr.js HTTP/1.1
Host: 138.186.84.147:3000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://138.186.84.147:3000/php/vrcotacao/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: GlassFish Server Open Source Edition 5.1.0
X-Powered-By: Servlet/3.1 JSP/2.3 (GlassFish Server Open Source Edition 5.1.0 Java/AdoptOpenJDK/1.8)
Accept-Ranges: bytes
ETag: W/"11413-1623689794000"
Last-Modified: Mon, 14 Jun 2021 16:56:34 GMT
Content-Type: text/javascript
Content-Length: 11413
138.186.84.147:3000/php/vrcotacao/css/bootstrap.min.css
138.186.84.147200 OK 103 kB URL GET HTTP/1.1 138.186.84.147:3000/php/vrcotacao/css/bootstrap.min.css
IP 138.186.84.147:3000
Requested by http://138.186.84.147:3000/php/vrcotacao/login.php
File type ASCII text, with very long lines (65307)
Size 103 kB (103316 bytes)
Hash 66e48c230cf5ea36376700eafacbcb25
3fe6f9f5c3167e4eb4a213c88988b27f783f3d30
e6a5fc01743b956df3447a600652eff5ea3b06239aaccf52ce5b41c3ec02e3f7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /php/vrcotacao/css/bootstrap.min.css HTTP/1.1
Host: 138.186.84.147:3000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://138.186.84.147:3000/php/vrcotacao/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: GlassFish Server Open Source Edition 5.1.0
X-Powered-By: Servlet/3.1 JSP/2.3 (GlassFish Server Open Source Edition 5.1.0 Java/AdoptOpenJDK/1.8)
Accept-Ranges: bytes
ETag: W/"103316-1618236450000"
Last-Modified: Mon, 12 Apr 2021 14:07:30 GMT
Content-Type: text/css
Content-Length: 103316
138.186.84.147:3000/php/vrcotacao/img/logotipo.png
138.186.84.147200 OK 5.2 kB URL GET HTTP/1.1 138.186.84.147:3000/php/vrcotacao/img/logotipo.png
IP 138.186.84.147:3000
Requested by http://138.186.84.147:3000/php/vrcotacao/login.php
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced
Hash 3520d58890eff7b75cf423cfda4cf6bf
2a9a7364f868c2b0cf5e238c8a0c6b25e089dc73
75275d268e1f7e013165bcda9a156325bbec3a21f8943df6f39ebdc8acd13b5c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /php/vrcotacao/img/logotipo.png HTTP/1.1
Host: 138.186.84.147:3000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://138.186.84.147:3000/php/vrcotacao/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: GlassFish Server Open Source Edition 5.1.0
X-Powered-By: Servlet/3.1 JSP/2.3 (GlassFish Server Open Source Edition 5.1.0 Java/AdoptOpenJDK/1.8)
Accept-Ranges: bytes
ETag: W/"5187-1623678219000"
Last-Modified: Mon, 14 Jun 2021 13:43:39 GMT
Content-Type: image/png
Content-Length: 5187
138.186.84.147:3000/php/vrcotacao/img/login.png
138.186.84.147200 OK 5.5 kB URL GET HTTP/1.1 138.186.84.147:3000/php/vrcotacao/img/login.png
IP 138.186.84.147:3000
Requested by http://138.186.84.147:3000/php/vrcotacao/login.php
File type PNG image data, 450 x 284, 8-bit/color RGB, non-interlaced
Hash bb828c42c96166c5d6c16ab0025eea01
7533d5d517c840f00fc9ab7b1653a9c98cde46b2
761116134ba0deedb9a523cf2eebc568819e754a1c8a20d098a6d4bc8655c0e9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /php/vrcotacao/img/login.png HTTP/1.1
Host: 138.186.84.147:3000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://138.186.84.147:3000/php/vrcotacao/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: GlassFish Server Open Source Edition 5.1.0
X-Powered-By: Servlet/3.1 JSP/2.3 (GlassFish Server Open Source Edition 5.1.0 Java/AdoptOpenJDK/1.8)
Accept-Ranges: bytes
ETag: W/"5477-1618236450000"
Last-Modified: Mon, 12 Apr 2021 14:07:30 GMT
Content-Type: image/png
Content-Length: 5477
138.186.84.147:3000/php/vrcotacao/img/glyphicons-halflings.png
138.186.84.147200 OK 13 kB URL GET HTTP/1.1 138.186.84.147:3000/php/vrcotacao/img/glyphicons-halflings.png
IP 138.186.84.147:3000
Requested by http://138.186.84.147:3000/php/vrcotacao/login.php
File type PNG image data, 469 x 159, 8-bit gray+alpha, non-interlaced
Hash 2516339970d710819585f90773aebe0a
84f613631b07d4fe22acbab50e551c0fe04bd78b
d99e3fa32c641032f08149914b28c2dc6acf2ec62f70987f2259eabbfa7fc0de
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /php/vrcotacao/img/glyphicons-halflings.png HTTP/1.1
Host: 138.186.84.147:3000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://138.186.84.147:3000/php/vrcotacao/css/bootstrap.min.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: GlassFish Server Open Source Edition 5.1.0
X-Powered-By: Servlet/3.1 JSP/2.3 (GlassFish Server Open Source Edition 5.1.0 Java/AdoptOpenJDK/1.8)
Accept-Ranges: bytes
ETag: W/"12799-1618236450000"
Last-Modified: Mon, 12 Apr 2021 14:07:30 GMT
Content-Type: image/png
Content-Length: 12799
138.186.84.147:3000/php/vrcotacao/img/favicon.ico
138.186.84.147200 OK 15 kB URL GET HTTP/1.1 138.186.84.147:3000/php/vrcotacao/img/favicon.ico
IP 138.186.84.147:3000
Requested by http://138.186.84.147:3000/php/vrcotacao/login.php
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Hash db849aa87e7b35d368850ad46200f7db
c87baef06a9f40857dd45703f084f465c76b4eb3
439aec026a3487915d991947e6b3252440db2534b739bbf4c0e6266d32bdadf8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /php/vrcotacao/img/favicon.ico HTTP/1.1
Host: 138.186.84.147:3000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://138.186.84.147:3000/php/vrcotacao/login.php
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: GlassFish Server Open Source Edition 5.1.0
X-Powered-By: Servlet/3.1 JSP/2.3 (GlassFish Server Open Source Edition 5.1.0 Java/AdoptOpenJDK/1.8)
Accept-Ranges: bytes
ETag: W/"15406-1623679449000"
Last-Modified: Mon, 14 Jun 2021 14:04:09 GMT
Content-Type: image/x-icon
Content-Length: 15406